Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Preprint |
| Published: |
2023
|
| Subjects: | |
| Online Access: | https://arxiv.org/abs/2312.12608 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1866910664498348032 |
|---|---|
| author | Kumari, Anupriya Bhardwaj, Devansh Jindal, Sukrit |
| author_facet | Kumari, Anupriya Bhardwaj, Devansh Jindal, Sukrit |
| contents | Machine learning models have demonstrated remarkable success across diverse domains but remain vulnerable to adversarial attacks. Empirical defense mechanisms often fail, as new attacks constantly emerge, rendering existing defenses obsolete, shifting the focus to certification-based defenses. Randomized smoothing has emerged as a promising technique among notable advancements. This study reviews the theoretical foundations and empirical effectiveness of randomized smoothing and its derivatives in verifying machine learning classifiers from a perspective of scalability. We provide an in-depth exploration of the fundamental concepts underlying randomized smoothing, highlighting its theoretical guarantees in certifying robustness against adversarial perturbations and discuss the challenges of existing methodologies. |
| format | Preprint |
| id |
arxiv_https___arxiv_org_abs_2312_12608 |
| institution | arXiv |
| publishDate | 2023 |
| record_format | arxiv |
| spellingShingle | Rethinking Randomized Smoothing from the Perspective of Scalability Kumari, Anupriya Bhardwaj, Devansh Jindal, Sukrit Machine Learning Cryptography and Security Machine learning models have demonstrated remarkable success across diverse domains but remain vulnerable to adversarial attacks. Empirical defense mechanisms often fail, as new attacks constantly emerge, rendering existing defenses obsolete, shifting the focus to certification-based defenses. Randomized smoothing has emerged as a promising technique among notable advancements. This study reviews the theoretical foundations and empirical effectiveness of randomized smoothing and its derivatives in verifying machine learning classifiers from a perspective of scalability. We provide an in-depth exploration of the fundamental concepts underlying randomized smoothing, highlighting its theoretical guarantees in certifying robustness against adversarial perturbations and discuss the challenges of existing methodologies. |
| title | Rethinking Randomized Smoothing from the Perspective of Scalability |
| topic | Machine Learning Cryptography and Security |
| url | https://arxiv.org/abs/2312.12608 |